2016-12-23 10:02:07 -06:00
|
|
|
<?php
|
|
|
|
|
|
|
|
/**
|
|
|
|
* OpenSSH Key Handler
|
|
|
|
*
|
|
|
|
* PHP version 5
|
|
|
|
*
|
|
|
|
* Place in $HOME/.ssh/authorized_keys
|
|
|
|
*
|
|
|
|
* @category Crypt
|
|
|
|
* @package Common
|
|
|
|
* @author Jim Wigginton <terrafrost@php.net>
|
|
|
|
* @copyright 2015 Jim Wigginton
|
|
|
|
* @license http://www.opensource.org/licenses/mit-license.html MIT License
|
|
|
|
* @link http://phpseclib.sourceforge.net
|
|
|
|
*/
|
|
|
|
|
|
|
|
namespace phpseclib\Crypt\Common\Keys;
|
|
|
|
|
|
|
|
use ParagonIE\ConstantTime\Base64;
|
|
|
|
use phpseclib\Common\Functions\Strings;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* OpenSSH Formatted RSA Key Handler
|
|
|
|
*
|
|
|
|
* @package Common
|
|
|
|
* @author Jim Wigginton <terrafrost@php.net>
|
|
|
|
* @access public
|
|
|
|
*/
|
|
|
|
abstract class OpenSSH
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* Default comment
|
|
|
|
*
|
|
|
|
* @var string
|
|
|
|
* @access private
|
|
|
|
*/
|
|
|
|
protected static $comment = 'phpseclib-generated-key';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Binary key flag
|
|
|
|
*
|
|
|
|
* @var bool
|
|
|
|
* @access private
|
|
|
|
*/
|
|
|
|
protected static $binary = false;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Sets the default comment
|
|
|
|
*
|
|
|
|
* @access public
|
|
|
|
* @param string $comment
|
|
|
|
*/
|
|
|
|
public static function setComment($comment)
|
|
|
|
{
|
|
|
|
self::$comment = str_replace(["\r", "\n"], '', $comment);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Break a public or private key down into its constituent components
|
|
|
|
*
|
|
|
|
* $type can be either ssh-dss or ssh-rsa
|
|
|
|
*
|
|
|
|
* @access public
|
|
|
|
* @param string $key
|
|
|
|
* @param string $type
|
2018-10-24 20:00:37 -05:00
|
|
|
* @return array
|
2016-12-23 10:02:07 -06:00
|
|
|
*/
|
|
|
|
public static function load($key, $type)
|
|
|
|
{
|
|
|
|
if (!is_string($key)) {
|
2018-10-24 20:00:37 -05:00
|
|
|
throw new \UnexpectedValueException('Key should be a string - not a ' . gettype($key));
|
2016-12-23 10:02:07 -06:00
|
|
|
}
|
|
|
|
|
|
|
|
$parts = explode(' ', $key, 3);
|
|
|
|
|
|
|
|
if (!isset($parts[1])) {
|
|
|
|
$key = Base64::decode($parts[0]);
|
|
|
|
$comment = isset($parts[1]) ? $parts[1] : false;
|
|
|
|
} else {
|
|
|
|
if ($parts[0] != $type) {
|
2018-10-24 20:00:37 -05:00
|
|
|
throw new \UnexpectedValueException('Expected a ' . $type . ' key - got a ' . $parts[0] . ' key');
|
2016-12-23 10:02:07 -06:00
|
|
|
}
|
|
|
|
$key = Base64::decode($parts[1]);
|
|
|
|
$comment = isset($parts[2]) ? $parts[2] : false;
|
|
|
|
}
|
|
|
|
if ($key === false) {
|
2018-10-24 20:00:37 -05:00
|
|
|
throw new \UnexpectedValueException('Key should be a string - not a ' . gettype($key));
|
2016-12-23 10:02:07 -06:00
|
|
|
}
|
|
|
|
|
2018-10-24 20:00:37 -05:00
|
|
|
if (Strings::shift($key, strlen($type) + 4) != "\0\0\0" . chr(strlen($type)) . $type) {
|
|
|
|
throw new \UnexpectedValueException('Key appears to be malformed');
|
2016-12-23 10:02:07 -06:00
|
|
|
}
|
|
|
|
if (strlen($key) <= 4) {
|
2018-10-24 20:00:37 -05:00
|
|
|
throw new \UnexpectedValueException('Key appears to be malformed');
|
2016-12-23 10:02:07 -06:00
|
|
|
}
|
|
|
|
|
|
|
|
return $key;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Returns the comment for the key
|
|
|
|
*
|
|
|
|
* @access public
|
2017-11-05 14:35:27 -06:00
|
|
|
* @param string $key
|
2016-12-23 10:02:07 -06:00
|
|
|
* @return mixed
|
|
|
|
*/
|
|
|
|
public static function getComment($key)
|
|
|
|
{
|
|
|
|
$parts = explode(' ', $key, 3);
|
|
|
|
|
|
|
|
return isset($parts[2]) ? $parts[2] : false;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Toggle between binary and printable keys
|
|
|
|
*
|
|
|
|
* Printable keys are what are generated by default. These are the ones that go in
|
|
|
|
* $HOME/.ssh/authorized_key.
|
|
|
|
*
|
|
|
|
* @access public
|
|
|
|
* @param bool $enabled
|
|
|
|
*/
|
|
|
|
public static function setBinaryOutput($enabled)
|
|
|
|
{
|
|
|
|
self::$binary = $enabled;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Returns the current binary output value
|
|
|
|
*
|
|
|
|
* @access public
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public static function getBinaryOutput()
|
|
|
|
{
|
|
|
|
return (bool) self::$binary;
|
|
|
|
}
|
|
|
|
}
|